As a company, Onapsis is focused on the security of business-critical applications such as SAP and Oracle. While our focus is on SAP applications, we have been doing research on Oracle business applications as well, identifying and reporting critical vulnerabilities. In this sense, Oracle is different from SAP, specifically with the way and timing that security patches are released and available to end users.

SAP is a complex and ever changing system, whether because of changes introduced to your SAP implementation to better suit your business or through the application of Security Notes (Patches) to ensure that newly disclosed vulnerabilities are mitigated.

Onapsis has just completed its first annual North American Roadshow Series including stops in the Bay Area, Houston, Minneapolis and in New York. With over 100 attendees from Oil & Gas, Utilities, Retail, Manufacturing, Banking, Technology, Life Sciences and the Government industries, these events were a huge success for our customers. Representatives from the top 30 F1000 companies brought a unique perspective on how they are planning to, or have already implemented an SAP cybersecurity strategy with Onapsis at the core of their programs.

Back in the early 2000’s, I was involved in the widely publicized, EMC Business Continuity survey – which indicated a very large disparity between IT and business executives regarding the vulnerability of their business-critical data. Fast forward to today and I’m seeing a very similar scenario play out again. But this time, it has to do with the vulnerability of an organization’s business-critical SAP systems.